Search squid archive

Re: Reverse proxying http and https

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Taneli Leppä wrote:

Amos Jeffries wrote:
I suggest adding defaultsite=mysite.example.net to those to help out users with broken software. 

Thanks for the suggestion!


add name=XX to the existing cache_peer
then add:
cache_peer cached.mycache.net parent 443 0 originserver name=YY
all cache_peer_access and cache_peer_domains need to now refer to XX and YY instead of the peer FQDN. 

Great, this seems to work! Thanks! My configuration is now:

http_port mycache.net:80 vhost vport defaultsite=cached.mycache.net
https_port mycache.net:443 vhost vport defaultsite=cached.mycache.net key=/etc/squid/mycache.key cert=/etc/squid/mycache.crt 

cache_peer cached.mycache.net parent 80 0 originserver name=http
cache_peer cached.mycache.net parent 443 0 originserver name=https ssl sslflags=DONT_VERIFY_PEER
Just one last: are people going to be visiting mycache.net? or cached.mycache.net? 

http(s)_port and defaultsite=  need the public ones.
cache_peer should use a private domain name or even IP address so you can later change public DNS without breaking squid. 

Happy caching!
Amos
[Index of Archives]     [Linux Audio Users]     [Samba]     [Big List of Linux Books]     [Linux USB]     [Yosemite News]

  Powered by Linux